This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/87b214-ba8d-4df9-9ec9-1a16ef492034/1/HpPX4oqwueeUSHlGoProzW7VQHE.mft File: HpPX4oqwueeUSHlGoProzW7VQHE.mft (raw, json) Hash identifier: obI0IRtZQNKBXGw5o0xk38gRanxQiblgkiOG14vPPeo= Subject key identifier: 61:C2:B5:04:39:FB:09:AE:5A:60:DC:83:00:BF:7D:C7:07:72:F3:F2 Authority key identifier: 1E:93:D7:E2:8A:B0:B9:E7:94:48:79:46:A0:FA:E8:CD:6E:D5:40:71 Certificate issuer: /CN=1e93d7e28ab0b9e794487946a0fae8cd6ed54071 Certificate serial: 019C42461C9AE7644B5D68227F7141D4C1FC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HpPX4oqwueeUSHlGoProzW7VQHE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/87b214-ba8d-4df9-9ec9-1a16ef492034/1/HpPX4oqwueeUSHlGoProzW7VQHE.mft Manifest number: 01A9 Signing time: Mon 09 Feb 2026 12:00:16 +0000 Manifest this update: Mon 09 Feb 2026 12:00:16 +0000 Manifest next update: Tue 10 Feb 2026 12:00:16 +0000 Files and hashes: 1: HpPX4oqwueeUSHlGoProzW7VQHE.crl (hash: wUapT59WOEKcb97NQOvzv9S4OUvUvdL89f/vGKKp7I0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/87b214-ba8d-4df9-9ec9-1a16ef492034/1/HpPX4oqwueeUSHlGoProzW7VQHE.crl rsync://rpki.ripe.net/repository/DEFAULT/a1/87b214-ba8d-4df9-9ec9-1a16ef492034/1/HpPX4oqwueeUSHlGoProzW7VQHE.mft rsync://rpki.ripe.net/repository/DEFAULT/HpPX4oqwueeUSHlGoProzW7VQHE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:1c:9a:e7:64:4b:5d:68:22:7f:71:41:d4:c1:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1e93d7e28ab0b9e794487946a0fae8cd6ed54071 Validity Not Before: Feb 9 12:00:16 2026 GMT Not After : Feb 10 12:00:16 2026 GMT Subject: CN=61c2b50439fb09ae5a60dc8300bf7dc70772f3f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:99:74:9d:88:c0:a5:9c:75:58:aa:ad:47:42: 87:4a:45:af:6d:7e:ec:f1:53:51:57:4c:cf:dc:53: 89:52:9e:7c:6c:5e:a5:b7:e9:3e:15:8e:24:bf:c1: af:ef:df:05:c7:7c:a9:88:8b:16:0f:1c:6c:60:51: 1e:a7:1c:1a:31:0b:a1:6a:12:5e:59:4e:bc:b9:42: 88:5a:31:6a:4c:a5:15:94:95:89:4c:11:5d:a1:80: 2b:df:98:0f:d3:6e:91:22:3a:69:17:1d:09:04:a6: bf:6e:34:79:a1:6a:c7:93:29:23:69:da:12:bd:80: 73:fe:e5:24:f8:ae:c8:ff:92:b7:49:0d:6a:6f:50: c8:90:6c:36:ef:f8:08:59:3f:fe:9a:ae:d7:b2:c9: 7d:e4:32:a6:4a:58:fc:fa:ea:7a:b3:00:6b:12:5b: bb:65:ab:f7:52:96:63:84:81:f3:c3:dc:8b:ea:1c: ec:88:92:c6:32:73:39:e4:38:47:47:cf:c6:78:16: d3:cc:83:35:bd:dd:98:d6:d9:e9:1f:82:c4:63:ad: 4e:47:88:0c:d8:8a:41:3e:ed:cc:bd:ed:71:66:28: 8c:1b:66:da:66:c7:e8:10:1f:81:73:a7:f9:3b:60: 88:e1:97:01:14:d4:ec:c6:5b:ea:bc:53:c7:7e:10: 0b:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:C2:B5:04:39:FB:09:AE:5A:60:DC:83:00:BF:7D:C7:07:72:F3:F2 X509v3 Authority Key Identifier: keyid:1E:93:D7:E2:8A:B0:B9:E7:94:48:79:46:A0:FA:E8:CD:6E:D5:40:71 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HpPX4oqwueeUSHlGoProzW7VQHE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/87b214-ba8d-4df9-9ec9-1a16ef492034/1/HpPX4oqwueeUSHlGoProzW7VQHE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/87b214-ba8d-4df9-9ec9-1a16ef492034/1/HpPX4oqwueeUSHlGoProzW7VQHE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 90:2c:e8:fc:27:9f:fe:8d:d2:2d:73:41:dc:56:e3:59:86:66: 4d:07:61:13:4d:0f:89:67:6d:89:c3:07:49:74:12:15:80:11: d3:6d:3d:51:98:ae:32:7c:86:4b:3b:59:c4:5c:8e:e3:fb:f7: 81:ac:9d:02:2a:ba:79:6f:4f:7b:55:ac:1b:02:70:e0:17:83: ac:3d:71:ef:20:3e:bb:71:fa:4e:92:01:3b:57:87:2b:35:f2: cb:2d:ff:6b:cf:30:92:38:6d:26:a2:69:09:42:3b:7c:cb:b5: b1:e3:12:00:d6:09:f3:e1:e4:47:d5:9a:af:23:84:a9:73:de: 70:b3:50:76:b3:57:31:c4:e5:21:13:4e:47:31:36:c1:01:23: a7:63:91:bc:bb:6f:dc:5f:bc:df:c4:76:5e:50:19:10:25:e6: 92:cb:e9:05:f9:ec:1f:f4:c6:16:b2:66:56:49:fb:77:c7:dc: ce:3e:76:41:7c:a0:29:ec:46:3a:da:97:e1:b5:da:bd:8b:a4: f9:f4:6a:b6:2e:a2:50:72:6e:ba:a1:80:d6:3d:56:ab:7f:ae: 42:44:19:e7:59:b1:63:86:87:2f:37:15:01:9b:34:c9:59:66: a4:24:b5:61:00:ba:2b:1f:c5:38:e5:0f:30:1e:5c:76:bf:a5: 50:19:5d:87 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRhya52RLXWgif3FB1MH8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFlOTNkN2UyOGFiMGI5ZTc5NDQ4Nzk0NmEwZmFlOGNkNmVk NTQwNzEwHhcNMjYwMjA5MTIwMDE2WhcNMjYwMjEwMTIwMDE2WjAzMTEwLwYDVQQD Eyg2MWMyYjUwNDM5ZmIwOWFlNWE2MGRjODMwMGJmN2RjNzA3NzJmM2YyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwJl0nYjApZx1WKqtR0KHSkWvbX7s 8VNRV0zP3FOJUp58bF6lt+k+FY4kv8Gv798Fx3ypiIsWDxxsYFEepxwaMQuhahJe WU68uUKIWjFqTKUVlJWJTBFdoYAr35gP026RIjppFx0JBKa/bjR5oWrHkykjadoS vYBz/uUk+K7I/5K3SQ1qb1DIkGw27/gIWT/+mq7Xssl95DKmSlj8+up6swBrElu7 Zav3UpZjhIHzw9yL6hzsiJLGMnM55DhHR8/GeBbTzIM1vd2Y1tnpH4LEY61OR4gM 2IpBPu3Mve1xZiiMG2baZsfoEB+Bc6f5O2CI4ZcBFNTsxlvqvFPHfhALJQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGHCtQQ5+wmuWmDcgwC/fccHcvPyMB8GA1UdIwQY MBaAFB6T1+KKsLnnlEh5RqD66M1u1UBxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSHBQWDRvcXd1ZWVVU0hsR29Qcm96VzdWUUhFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMS84N2IyMTQtYmE4ZC00ZGY5LTllYzkt MWExNmVmNDkyMDM0LzEvSHBQWDRvcXd1ZWVVU0hsR29Qcm96VzdWUUhFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMS84N2IyMTQtYmE4ZC00ZGY5LTllYzktMWExNmVmNDkyMDM0 LzEvSHBQWDRvcXd1ZWVVU0hsR29Qcm96VzdWUUhFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkCzo/Cef /o3SLXNB3FbjWYZmTQdhE00PiWdticMHSXQSFYAR0209UZiuMnyGSztZxFyO4/v3 gaydAiq6eW9Pe1WsGwJw4BeDrD1x7yA+u3H6TpIBO1eHKzXyyy3/a88wkjhtJqJp CUI7fMu1seMSANYJ8+HkR9WaryOEqXPecLNQdrNXMcTlIRNORzE2wQEjp2ORvLtv 3F+838R2XlAZECXmksvpBfnsH/TGFrJmVkn7d8fczj52QXygKexGOtqX4bXavYuk +fRqti6iUHJuuqGA1j1Wq3+uQkQZ51mxY4aHLzcVAZs0yVlmpCS1YQC6Kx/FOOUP MB5cdr+lUBldhw== -----END CERTIFICATE-----Generated at Mon Feb 9 16:54:03 2026 by rpki-client